Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/xgEvln5CwvjXXN8s3covjVBxew0.roa
File: xgEvln5CwvjXXN8s3covjVBxew0.roa (raw, json)
Hash identifier: CpYsZRksWwtK2DaWKpUi+TJWBXmYhcFABR/oTYXhy4g=
Subject key identifier: C6:01:2F:96:7E:42:C2:F8:D7:5C:DF:2C:DD:CA:2F:8D:50:71:7B:0D
Certificate issuer: /CN=5fbe65ae23f207fa695255f55a907ac1608be094
Certificate serial: 0A630EB0
Authority key identifier: 5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/xgEvln5CwvjXXN8s3covjVBxew0.roa
Signing time: Tue 10 May 2022 18:47:02 +0000
ROA not before: Tue 10 May 2022 18:47:02 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 211183
IP address blocks: 185.240.103.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 174263984 (0xa630eb0)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=5fbe65ae23f207fa695255f55a907ac1608be094
Validity
Not Before: May 10 18:47:02 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=c6012f967e42c2f8d75cdf2cddca2f8d50717b0d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ae:a7:05:e9:a3:01:d0:b2:0d:19:a8:98:b6:46:
ce:4c:ea:8e:11:bc:1f:da:2d:9a:ad:a4:ae:8a:74:
a3:9e:a2:18:4f:bd:40:33:20:96:90:06:64:f2:a6:
fe:b7:0b:f3:37:e3:e7:aa:79:ea:75:cf:a4:5b:0d:
85:3e:92:ef:b3:37:9f:e5:2e:06:ca:06:b9:5f:e3:
1c:c1:e2:41:2d:43:d1:eb:16:06:c1:a3:e8:97:c7:
0d:86:14:c4:35:28:86:8b:31:a9:af:54:8c:3d:be:
22:90:c0:49:e2:bc:b8:0f:94:24:eb:73:8f:ce:69:
0b:c7:a2:50:42:57:2b:d6:37:19:8c:ff:2d:a0:6f:
fe:bb:95:84:be:a0:0a:59:61:74:fb:7d:cd:17:3f:
2e:7f:73:0c:95:61:82:46:a1:d2:0e:2f:b0:08:a1:
98:53:54:55:80:c4:27:6d:dc:cb:f0:12:c0:6d:30:
6f:d9:f6:4b:05:28:dc:dc:24:87:48:86:56:b3:aa:
1a:50:98:e4:35:93:9a:74:e2:0f:40:1c:ab:d7:25:
e0:da:d9:a0:62:49:61:14:c1:ea:69:f1:29:fd:63:
56:d5:e2:e4:99:eb:94:9e:44:5e:a4:f3:54:59:27:
4e:d1:ae:ba:e7:a3:23:c7:ba:04:de:3e:68:99:2b:
59:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
C6:01:2F:96:7E:42:C2:F8:D7:5C:DF:2C:DD:CA:2F:8D:50:71:7B:0D
X509v3 Authority Key Identifier:
keyid:5F:BE:65:AE:23:F2:07:FA:69:52:55:F5:5A:90:7A:C1:60:8B:E0:94
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/X75lriPyB_ppUlX1WpB6wWCL4JQ.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/xgEvln5CwvjXXN8s3covjVBxew0.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/f4319f-3dfb-42ea-ba95-492ab372689d/1/X75lriPyB_ppUlX1WpB6wWCL4JQ.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.240.103.0/24
Signature Algorithm: sha256WithRSAEncryption
31:e5:dd:ad:32:2f:6f:ba:22:1d:53:50:52:64:6f:bf:b0:e9:
0f:2d:a6:9d:37:85:e4:99:1b:ce:12:48:c3:7b:e2:82:46:25:
ab:de:fb:9f:81:42:87:4d:57:37:88:51:10:f2:ce:a9:90:a3:
18:cf:77:48:34:99:b9:2f:79:da:10:57:4a:62:51:cb:8f:06:
c0:0e:a7:ff:43:31:91:08:2e:59:ee:23:ca:1e:dd:37:0d:0c:
79:6e:ff:6e:0c:40:13:7e:2a:d8:08:9b:62:18:08:50:2b:3a:
9d:4e:fd:36:f7:e7:99:24:82:c5:70:51:54:e4:bc:10:45:af:
b4:ab:63:24:de:e0:8f:57:dd:1e:c5:c7:e6:49:48:32:45:25:
87:c6:72:c1:94:e0:5f:09:82:fd:2a:6d:4e:32:d5:0b:9b:c2:
91:db:15:27:e3:2d:d9:cb:af:91:13:b7:f4:9f:5a:10:7c:c4:
0d:f3:a7:6d:61:59:bb:f5:f2:a8:92:13:47:3c:26:34:ac:f8:
29:4b:59:1b:a3:05:12:3c:f9:94:2f:77:4a:52:2a:06:11:ae:
9a:21:46:47:81:03:4d:5a:8b:96:9e:76:30:93:ec:22:ce:0c:
96:33:53:e7:9c:32:ac:d6:77:ba:4c:ea:7c:26:95:c2:a3:83:
e6:17:c0:50
-----BEGIN CERTIFICATE-----
MIIE7zCCA9egAwIBAgIECmMOsDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg1
ZmJlNjVhZTIzZjIwN2ZhNjk1MjU1ZjU1YTkwN2FjMTYwOGJlMDk0MB4XDTIyMDUx
MDE4NDcwMloXDTIzMDcwMTAwMDAwMFowMzExMC8GA1UEAxMoYzYwMTJmOTY3ZTQy
YzJmOGQ3NWNkZjJjZGRjYTJmOGQ1MDcxN2IwZDCCASIwDQYJKoZIhvcNAQEBBQAD
ggEPADCCAQoCggEBAK6nBemjAdCyDRmomLZGzkzqjhG8H9otmq2krop0o56iGE+9
QDMglpAGZPKm/rcL8zfj56p56nXPpFsNhT6S77M3n+UuBsoGuV/jHMHiQS1D0esW
BsGj6JfHDYYUxDUohosxqa9UjD2+IpDASeK8uA+UJOtzj85pC8eiUEJXK9Y3GYz/
LaBv/ruVhL6gCllhdPt9zRc/Ln9zDJVhgkah0g4vsAihmFNUVYDEJ23cy/ASwG0w
b9n2SwUo3Nwkh0iGVrOqGlCY5DWTmnTiD0Acq9cl4NrZoGJJYRTB6mnxKf1jVtXi
5JnrlJ5EXqTzVFknTtGuuuejI8e6BN4+aJkrWWECAwEAAaOCAgkwggIFMB0GA1Ud
DgQWBBTGAS+WfkLC+Ndc3yzdyi+NUHF7DTAfBgNVHSMEGDAWgBRfvmWuI/IH+mlS
VfVakHrBYIvglDAOBgNVHQ8BAf8EBAMCB4AwZAYIKwYBBQUHAQEEWDBWMFQGCCsG
AQUFBzAChkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxU
L1g3NWxyaVB5Ql9wcFVsWDFXcEI2d1dDTDRKUS5jZXIwgY0GCCsGAQUFBwELBIGA
MH4wfAYIKwYBBQUHMAuGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5
L0RFRkFVTFQvYTEvZjQzMTlmLTNkZmItNDJlYS1iYTk1LTQ5MmFiMzcyNjg5ZC8x
L3hnRXZsbjVDd3ZqWFhOOHMzY292alZCeGV3MC5yb2EwgYEGA1UdHwR6MHgwdqB0
oHKGcHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEv
ZjQzMTlmLTNkZmItNDJlYS1iYTk1LTQ5MmFiMzcyNjg5ZC8xL1g3NWxyaVB5Ql9w
cFVsWDFXcEI2d1dDTDRKUS5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAf
BggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEALnwZzANBgkqhkiG9w0BAQsFAAOC
AQEAMeXdrTIvb7oiHVNQUmRvv7DpDy2mnTeF5JkbzhJIw3vigkYlq977n4FCh01X
N4hREPLOqZCjGM93SDSZuS952hBXSmJRy48GwA6n/0MxkQguWe4jyh7dNw0MeW7/
bgxAE34q2AibYhgIUCs6nU79NvfnmSSCxXBRVOS8EEWvtKtjJN7gj1fdHsXH5klI
MkUlh8ZywZTgXwmC/SptTjLVC5vCkdsVJ+Mt2cuvkRO39J9aEHzEDfOnbWFZu/Xy
qJITRzwmNKz4KUtZG6MFEjz5lC93SlIqBhGumiFGR4EDTVqLlp52MJPsIs4MljNT
55wyrNZ3ukzqfCaVwqOD5hfAUA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:47:59 2024 by rpki-client on console-fra.rpki-client.org